{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-20059", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2025-10-08T11:59:15.356Z", "datePublished": "2026-04-15T16:11:22.828Z", "dateUpdated": "2026-04-15T16:56:33.949Z"}, "containers": {"cna": {"title": "Cisco Unity Connection Reflected Cross-Site Scripting Vulnerability", "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "baseScore": 6.1, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}}], "descriptions": [{"lang": "en", "value": "A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unauthenticated, remote attacker to conduct a reflected XSS attack against a user of the interface.\r\n\r\nThis vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-unity-vulns-n2EJSbbw", "name": "cisco-sa-unity-vulns-n2EJSbbw"}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "source": {"advisory": "cisco-sa-unity-vulns-n2EJSbbw", "discovery": "EXTERNAL", "defects": ["CSCwq36822"]}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "type": "cwe", "cweId": "CWE-79"}]}], "affected": [{"vendor": "Cisco", "product": "Cisco Unity Connection", "versions": [{"version": "14", "status": "affected"}, {"version": "14SU1", "status": "affected"}, {"version": "14SU2", "status": "affected"}, {"version": "14SU3", "status": "affected"}, {"version": "14SU3a", "status": "affected"}, {"version": "15", "status": "affected"}, {"version": "15SU1", "status": "affected"}, {"version": "14SU4", "status": "affected"}, {"version": "15SU2", "status": "affected"}, {"version": "15SU3", "status": "affected"}, {"version": "14SU5", "status": "affected"}, {"version": "15SU4", "status": "affected"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2026-04-15T16:11:22.828Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-20059", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-15T16:41:31.162559Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-15T16:56:33.949Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-20059", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-15T16:41:31.162559Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-15T16:56:12.389Z"}}], "cna": {"title": "Cisco Unity Connection Reflected Cross-Site Scripting Vulnerability", "source": {"defects": ["CSCwq36822"], "advisory": "cisco-sa-unity-vulns-n2EJSbbw", "discovery": "EXTERNAL"}, "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "Cisco", "product": "Cisco Unity Connection", "versions": [{"status": "affected", "version": "14"}, {"status": "affected", "version": "14SU1"}, {"status": "affected", "version": "14SU2"}, {"status": "affected", "version": "14SU3"}, {"status": "affected", "version": "14SU3a"}, {"status": "affected", "version": "15"}, {"status": "affected", "version": "15SU1"}, {"status": "affected", "version": "14SU4"}, {"status": "affected", "version": "15SU2"}, {"status": "affected", "version": "15SU3"}, {"status": "affected", "version": "14SU5"}, {"status": "affected", "version": "15SU4"}], "defaultStatus": "unknown"}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-unity-vulns-n2EJSbbw", "name": "cisco-sa-unity-vulns-n2EJSbbw"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unauthenticated, remote attacker to conduct a reflected XSS attack against a user of the interface.\r\n\r\nThis vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "cweId": "CWE-79", "description": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2026-04-15T16:11:22.828Z"}}}, "cveMetadata": {"cveId": "CVE-2026-20059", "state": "PUBLISHED", "dateUpdated": "2026-04-15T16:56:33.949Z", "dateReserved": "2025-10-08T11:59:15.356Z", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "datePublished": "2026-04-15T16:11:22.828Z", "assignerShortName": "cisco"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:unity_connection:*:*:*:*:*:*:*:*", "matchCriteriaId": "6DAF417F-F480-4A4D-845B-8338776FF253", "versionEndIncluding": "12.5", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unity_connection:14.0:*:*:*:*:*:*:*", "matchCriteriaId": "A85D56C0-D4A3-43A7-9CD1-FCEB6C8AEF66", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unity_connection:14su1:*:*:*:*:*:*:*", "matchCriteriaId": "774C01A1-9328-45E8-9BDD-470A10BC3C2A", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unity_connection:14su2:*:*:*:*:*:*:*", "matchCriteriaId": "CD8AB4B5-12C2-4F02-A4C3-4B8C06AFFD53", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unity_connection:14su3:*:*:*:*:*:*:*", "matchCriteriaId": "181866CE-6279-4422-8EF8-7A12DB5B21F6", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unity_connection:14su3a:*:*:*:*:*:*:*", "matchCriteriaId": "7B70BACC-B771-4049-8A55-3B277913DEEF", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unity_connection:14su4:*:*:*:*:*:*:*", "matchCriteriaId": "D09F3655-B513-48F6-82A8-F0F946C52D25", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unity_connection:14su5:*:*:*:*:*:*:*", "matchCriteriaId": "E51AF0FF-016D-4F20-8F88-0E70D18C375C", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unity_connection:15.0:*:*:*:*:*:*:*", "matchCriteriaId": "97CC6719-1A7F-48BA-8014-802E235ED80D", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unity_connection:15su1:*:*:*:*:*:*:*", "matchCriteriaId": "2C9412EC-282C-4926-83F8-932E24E0FC22", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unity_connection:15su2:*:*:*:*:*:*:*", "matchCriteriaId": "37EFE547-7D3C-4D71-8D46-2C5734B9D64B", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unity_connection:15su3:*:*:*:*:*:*:*", "matchCriteriaId": "CE6AF25B-E6F9-4E15-902D-4516DFE8C8E2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unauthenticated, remote attacker to conduct a reflected XSS attack against a user of the interface.\r\n\r\nThis vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information."}], "id": "CVE-2026-20059", "lastModified": "2026-04-28T16:31:07.970", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "psirt@cisco.com", "type": "Primary"}]}, "published": "2026-04-15T17:17:01.060", "references": [{"source": "psirt@cisco.com", "tags": ["Vendor Advisory"], "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-unity-vulns-n2EJSbbw"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "psirt@cisco.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[14,14]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[14SU1,14SU1]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[14SU2,14SU2]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[14SU3,14SU3]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[14SU3a,14SU3a]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[15,15]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[15SU1,15SU1]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[14SU4,14SU4]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[15SU2,15SU2]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[15SU3,15SU3]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[14SU5,14SU5]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[15SU4,15SU4]"}}], "enrichment": {"confidence": 88.0, "confidence_source": "matching", "scores": [{"score": 88.0, "source": "matching"}]}, "original": {"product": "Cisco Unity Connection", "source": "cna", "vendor": "Cisco"}, "product": "unity_connection", "vendor": "cisco"}], "analysis": {"en": {"generated_at": "2026-04-15T22:17:32.126797+00:00", "value": {"mitigation_remediation": ["Apply the latest Cisco Unity Connection patch or update selected by the vendor that addresses the reflected XSS flaw.", "Limit exposure of the web\u2011based management interface to approved networks or enforce strict authentication controls, such as multi\u2011factor authentication, so that only verified administrators can use it.", "Deploy a web application firewall or configure browser\u2011side script\u2011blocking policies to detect and block reflected XSS payloads, ensuring input sanitization practices consistent with CWE\u201179 best practices."], "summary": {"action": "Apply Patch", "impact": "Reflected Cross\u2011Site Scripting enabling arbitrary JavaScript execution in the Unity Connection web interface"}, "threat_synthesis": {"affected_systems": "Cisco Unity Connection across all released versions, as no specific affected version list is provided in the advisory. All installations should be assessed for the vulnerable input handling paths.", "description_and_impact": "A reflected XSS flaw exists in Cisco Unity Connection\u2019s web\u2011based management interface because user input is not properly sanitized. An attacker can craft a URL that, when clicked by an administrator or other privileged user, injects malicious JavaScript into the browser session. This allows the attacker to execute arbitrary script code with the same privileges as the victim, potentially stealing session cookies or other data visible to the browser. The weakness is a canonical input\u2011validation issue listed as CWE\u201179.", "risk_and_exploitability": "The CVSS score of 6.1 indicates moderate severity when successful. Exploit probability is not presently recorded, and there is no report of large\u2011scale exploitation. Attack vectors are remote and unauthenticated: the attacker only needs to entice a user who has legitimate access to the management interface to click a malicious link. Full exploitation occurs in the victim\u2019s browser, not on the server, so confidentiality or integrity impact is confined to the client session."}}}}, "created": "2026-04-15T21:00:09.463008+00:00", "updated": "2026-04-15T22:30:16.055416+00:00", "vendors": ["cisco", "cisco$PRODUCT$unity_connection"]}